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(57) An improved secured data 
transmission system relies on the 
favorable comparison of coded signals 
derived from information about 
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manual command in order to generate 
an operating key which is then used to 
encode and decode data that is 
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SPECIFICATION 

Method and Means for Securing the 
Distribution of Encoding Keys 

This invention is concerned with improvements 
5 in or relating to a method and means for securing 
the distribution of encoding keys. 

Certain known systems for securing the 
transmission of data between locations rely upon 
computer-operated terminals as input and output 

1 0 devices. These terminals commonly include an 
encoding module which encrypts applied data so 
that the subsequent transmission thereof to a 
remote location remains secured against 
unauthorized reception, alteration or duplication. 

1 5 The encoding module is commonly controlled by 
an encoding key which is only known to one or 
two trusted persons, but which nevertheless must 
be changed periodically to assure continued 
integrity of the secured data>transmlssion system. 

20 In the banking industry where secured-data 
transmission systems of this type have become 
widely used, it is common practice to allow a 
bank officer to initially establish the encoding key 
at each terminal at the start of operations for the 

25 day. This encoding key most usually must also be 
established at a remote end of the transmission 
system (say. at the central processor of the bank) 
in order to facilitate the decryption of transmitted 
and received encrypted data, and to permit the 

30 encryption of return messages that can then be 
decrypted according to the same key at the 
receiving terminal. 

Previous schemes for disseminating the 
encoding key for use at remote locations have 

35 Included too many people who thereby obtain 
sufficient information about the encoding key to 
seriously degrade the security of the system 
against unauthorized use of the encoding key be 
individuals who have access to the system from 

40 within the bank or from along the transmission 
system. 

The present invention provides data-handling 
apparatus for securing the transmission of data 
under control of an authorized individual from one 

45 location having an identification number to data 
processing means having memory means with 
the identification number stored therein at a 
remote location, the apparatus comprising 
encrypting means at the one location and remote 

50 location, each for producing first and second 
encoded outputs as a logical combination of a 
pair of signals applied thereto; input means at the 
one location coupled to the encrypting means for 
applying a pair of signals thereto which are 

55 representative of the identification number for the 
one location and of a code signal associated with 
the authorized individual; at the one location, 
storage means for storing the first encoded output 
produced by the encrypting means; at the remote 

60 location, data processing means having memory 
and storing the identification number for the one 
location and storing the code signal associated 
with the authorized Individual; said encrypting 
means at the remote location being coupled to 



65 receive the identification number and the code 
signal from the memory of the data processing 
means to produce first and second encoded 
outputs as said logical combination of signals 
applied thereto; storage means at the remote 

70 location for storing the first encoded output from 
the encrypting means thereat: comparator means 
responsive to the second encoded outputs 
received from each of said encrypting means for 
producing an enabling output in response to 

75 favorable comparison of said second encoded 
outputs; means responsive to said enabling 
output for producing a key code; means for 
transmitting to the one location an encrypted key 
code and the first encoded output from the 

80 storage means at said remote location; means at 
said one location for decrypting the encrypted key 
code received thereat with respect to the first 
encoded output stored thereat and the second 
logical combination to produce the key code; and 

85 means at said one location and said remote 
location for encoding and decoding data thereat 
with respect to the same logical manipulation of 
an applied signal and said encoding key. 
In an apparatus as set forth in the last 

90 preceding paragraph it is preferred that said input 
means at the one location provides an auxiliary 
code signal in response to manual actuation 
thereof, and applies to said encrypting means at 
the one location a pair of signals representative of 

95 the auxiliary code signal, the identification 

number for the one location and the code signal 
associated with the authorized individual; and 
said encrypting means at the remote location 
being coupled to receive the auxiliary code signal 
1 00 from the input means and the identification 

number and code signal from the memory of the 
data processing means for producing the first and 
second encoded outputs as said logical 
combination of a pair of signals applied thereto. 
1 05 An apparatus as set forth in either one of the 
last two immediately preceding paragraphs may 
also comprise code generating means responsive 
to said enabling signal for producing said key 
code as a logical manipulation of signals from the 
110 code-generating means. 

The present invention further provides a 
method of securing the transmission of data 
under control of an authorized individual from one 
location having an identification number to a 
1 1 5 remote location at which the identification 
number is stored, the method comprising the 
steps of encrypting at the one location a pair of 
signals which are representative of at least a code 
signal from the authorized individual and the 
1 20 identification number for the one location to 
produce first and second encoded outputs as a 
logical combination of the pair of signals; storing 
the first encoded output at the one locatio'^; 
storing the code signal from the authorized 
1 25 individual at the remote location; encrypting at 
the remote location a pair of signals 
representative of at least the stored code signal 
from the authorized individual and the stored 
identification number for the one location to 
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produce first and second encoded outputs as said 
logical combination of the pair of signals; 
comparing second encoded signals produced by 
the encryption of a pair of signals at the first 
5 location, and by the encryption of a pair of signals 
at the remote location \o enable the formation of 
a key code upon favorable comparison of the 
second encoded outputs; producing an encrypted 
key code as a logical manipulation of the key code 
1 0 and the first encoded output produced at the 
remote location: producing the key code from the 
encrypted key code received at the one location 
by decoding the encrypted key code with respect 
to said logical manipulation and the first encoded 
1 5 output stored at the one location; and encoding 
and decoding data at said one and remote 
locations with respect to the key code produced 
at said locations. 

In carrying out a method as set forth in the last 
20 preceding paragraph, it is preferred that the steps 
of encrypting at both the one location and remote 
location are performed on the respective pairs of 
signals which also are representative of at least a 
sequence number produced at the one location 
25 and transmitted to the remote location. 

In carrying out a method as set forth in either 
one of the last two immediately preceding 
paragraphs it is preferred that the formation of the 
key code includes the steps of generating code 
30 numbers: and encoding the generated code 
numbers to produce the key code in response to 
favorable comparison of said encoded output 
signals. 

In accordance with the preferred embodiment 
35 of the present invention, encryption and 

decryption keys for controlling the encoding and 
decoding of secured, transmitted data are 
generated and distributed over the secured 
transmission system without the involvement of 
40 additional individuals other than the person who 
initializes the system, and who may not even 
learn about the operating encoding key for 
himself. This is accomplished by relying on a 
secret code number or word or phrase which is 
45 selected by and known only to an authorized 
individual, which code (called a Personalized 
/ndividual Number or Code or Phrase) is combined 
in logical manner with an identification number 
for the terminal and a sequence number (or date, 
50 or random number, etc.) to produce a pair of 
codes, one of which remains stored in the 
terminal as an initialization key and the other of 
which (TRAC) can then be sent to the central 
processor at a remote location for proper analysis, 
55 At the central processor, the PIN (or PIC or PIP) 
for the authorized individual (and for all other 
authorized individuals) is retained in storage 
(preferably In encrypted form with its requisite 
encrypting key) along with the identification 
60 number of the terminal (and all other terminals 
included within the system). Thus, the central 
processor may regenerate the authorized 
individual's PIN for use within the processor only 
by decrypting the stored encrypted PIN using the 
65 stored encryption key code. The PIN and the 



terminal identification number accessed from the 
processor memory may be combined in the same 
logical 'manner as at the identified terminal to 
yield a pair of codes, namely, a TRAC and an 
70 initialization key. The TRAC thus generated, and 
the TRAC transmitted and received from the 
remote terminal may then be compared for parity. 
Upon detection of parity, any set of numbers may 
be randomly selected for encoding to provide the 
75 session key, and this session key may be encoded 
with the initialization key to produce an encrypted 
session key for transmission back to the identified 
terminal. Since the session key actually 
determines the encryption/decryption for the day 
80 (or other session period), it is only necessary to 
decrypt the encrypted session key as received 
back at the terminal using the initialization key 
stored therein to produce the requisite session 
key. Thereafter, the initialization key can be 
85 discarded. In accordance with this embodiment of 
the invention, the users of a terminal cannot know 
the session key, and other terminals cannot be 
used to intercept a message selected for 
transmission to one terminal. In addition, 
90 terminals cannot simply be connected 

unauthorizedly into the system because of the 
need for proper initial conditioning. 

There now follows a detailed description which 
is to be read with reference to the accompanying 
95 drawings of a method and apparatus according to 
the present invention; it is to be clearly 
understood that both the method and the 
apparatus have been selected for description to 
illustrate the invention by way of example and not 
100 by way of limitation. 

In the accompanying drawings: — 
Figure 1 is a simplified block schematic 
diagram of one embodiment of the present 
Invention: and 
1 05 Figure 2 is a chart showing the steps by vyhich 
a secured data transmission system Is initialized 
in accordance with the present invention. 

Referring now to the block diagram of Figure 1 
and to the chart of Figure 2. there is shown an 
1 10 input device 9 such as a keyboard as part of a 
data terminal. The keyboard enables an operator 
to enter data, a Personal Identification Number 
(PIN), and the like. In addition, the input device 9 
may be capable of supplying a predetermined 
1 1 5 machine identification number (I.D.,), for example, 
by accessing a register by a single keystroke to 
produce the machine number I.D.,. 

Also, as part of a data terminal, there is 
provided an encryption module 1 1 of the type, for 
1 20 example, referred to as a data encryption standard 
utilizing the National Bureau of Standards circuit 
chip (available from various semiconductor 
component suppliers). A pair of input signals to 
thr encryption module 1 1 may be provided using 
1 25 the illustrated format or any other suitable format 
which provides two inputs from at least the PIN 
from the. authorized Individual, the machine 
identification number, and a sequence number 
which may be a random number, one of a 
1 30 sequence of numbers, a date, time, etc. The 



sequence number assures that the encrypted 
output number will be different for each 
initialization operation performed. In addition, the 
data terminal may also include a storage register 
5 1 3 for storing key codes during the operation 
thereof. 

In operation, the data terminal must be 
initialized in the first operating cycle A to establish 
an operating key code that. Ideally, is different for 

10 each business day or other operating session. The 
key code for the terminal will be used to encrypt 
data for secured transmission, say. to a central 
processor at a remote location. An authorized 
individual enters his personal identification 

1 5 number PIN^ via the Input device 9, and this 
number is combined with the identification 
number of the machine and a sequence number in 
a conventional manner to produce a pair of input 
signals for the encryption module 1 1 having a 

20 signal format as illustrated. The encryption 
module 1 1 of the type described encodes one 
input number as a function of the other input 
number (each 56 to 64 bits long) to produce an 
output signal which may be considered as 

25 including an initializing-key code number, Key,, in 
the least significant bits, say. 56 bits, and a 
TRansmission Authentication Code in the 
remaining most significant output bits. The 
initializing-key code number. Key,, is stored in 

30 storage register 1 3, and the TRAC signal is 
transmitted over any suitable data transmission 
link 17 to the central processor at a remote 
location. 

The central processor 19 includes a memory 

35 file which contains all the identification numbers 
for all data terminals that are properly connected 
within the system. This memory file also contains 
all of the personal identification numbers (idealy, 
in encrypted form with associated encryption key) 

40 for all individuals who are authorized to initialize a 
terminal. Thus, an encryption module 21 (of the 
NBS-type previously described) at the remote 
location may operate with the central processor 
1 9 to regenerate the PIN^ {for internal use only) 

45 from information in the storage file. A pair of input 
signals may then be provided in the same format 
as used with module 1 1 , using the regenerated 
PIN^, the received sequence number, and the 
machine identification number I.D., for the 

50 terminal being initialized. This module also 

generates an initializing-key code number (Key^) 
which can be stored in a register 23, and a TRAC 
signal which can be compared in comparator 25 
with the TRAC signal that was produced and 

55 transmitted by the terminal being initialized. 
These TRAC signals should compare favorably, if 
the machine-identifying numbers are the same 
and the proper PIN^ for an authorized individual 
was entered and the transmitted TRAC signal and 

60 sequence number were received unaltered. 

Upon favorable comparison of the two TRAC 
signals in comparator 25. a pair of code numbers 
{e.g., random numbers) from generator 27 may 
then be gated into encryption module 2 1 ' of the 

65 NBS-type previously described using the requisite 
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input-signal format also previously described. Of 
course, modules 2 1 . 2 1 2 1" and 2 1 "' may all 
be the same module operating under control of 
the central processor during different portions of 

70 the operating cycle to perform the encoding or 
decoding described herein. The entire encrypted 
output from module 2 1 ' may be regarded as the 
encryption key for the session (Key,), and this 
may be encrypted in module 2 1 " with the 

75 intializing key (Key,) from the storage register 23. 
The resulting encrypted session key (Key',1 may 
then be transmitted back to the data terminal over 
the data link 17, and the initializing key (Key,) 
previously stored in register 23 may now be 

80 discarded and replaced with the session key 
(Key.). 

At the data terminal, the encrypted session key 
(Key',) is received from the central processor via 
the data transmission link 1 7, and is applied to a 

85 reversible encryption module 1 1 ' of the NBS-type 
previously described, along with the initializing 
key (Key,) from storage register 13. Of course, the 
modules 1 1 and 1 1 ' may be the same module 
operated In sequential states of the data terminal 

90 to perform the encoding or decoding functions 
described herein. The resulting decoded output 
from module 1 1 ' is the session key (Key,) which 
can be stored in register 13. The initializing key 
(Key,) may be discarded and replaced with the 
95 session key (Key,) to complete the initialization of 
the data terminal. 

After the initialization of the data terminal, as 
just described, input data may be encrypted 
during the second operating cycle B by inserting 

1 00 the data via input device 9 as one input to the 
encryption module 1 1 and by applying the 
session key (Key,) from register 1 3 as the other 
input of the encryption module. The resulting 
encrypted data may be transmitted via data link 

1 05 1 7 to the central processor. There, it is applied as 
one input to module 2 1 "', and the session key 
(Key,) from register 23 is supplied as the other 
input to module 21"'. This module, operating as a 
decoder, thus regenerates the data that was 

110 previously received in encrypted form. 

Therefore, the present invention provides the 
method and means for establishing an encrypting 
key which need not be known even to authorized 
individuals once it is properly established by such 

1 1 5 an individual. Also, since the encryption key is 
established using data which must be on file 
about a terminal, it is conveniently possible to 
exclude the unauthorized connection of additional 
terminals within the system of the present 

120 invention. 

Claims 

1-. Data-handling apparatus for securing the 
transmission of data under control of an 
authorized individual from one location having an 
1 2 5 identification number to data processing means 
having memory means with the identification 
number stored therein at a remote location, the 
apparatus comprising: 

encrypting means at the one location and 
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remote location, each for producing first and 
second encoded outputs as a logical connbination 
of a pair of signals applied thereto: 

input means at the one location coupled to the 
5 encrypting means for applying a pair of signals 
thereto which are representative of the 
identification number for the one location and of a 
code signal associated with the authorized 
individual: 

10 at the one location, storage means for storing 
the first encoded output produced by the 
encrypting means; 

at the remote location, data processing means 
having memory and storing the identification 
1 5 number for the one location and storing the code 
signal associated with the authorized Individual: 
said encrypting means at the remote location 
being coupled to receive the identification number 
and the code signal from, the memory of the data 
20 processing means to produce first and second 
encoded outputs as said logical combination of 
signals applied thereto: 

storage means at the remote location for 
storing the first encoded output from the 
2S encrypting means thereat: 

comparator means responsive to the second 
encoded outputs received from each of said 
encrypting means for producing an enabling 
output in response to favorable comparison of 
30 said second encoded outputs; 

means responsive to said enabling output for 
producing a key code; 

means for transmitting to the one location an 
encrypted key code as the second logical 
35 combination of said key code and the first 

encoded output from the storage means at said 
remote location: 

means at said one location for decrypting the 
encrypted key code received thereat with respect 
40 to the first encoded output stored thereat and the 
second logical combination to produce the key 
code; and 

means at said one location and said remote 
location for encoding and decoding data thereat 
45 with respect to the same logical manipulation of 
an applied signal and said encoding key. 

2. Apparatus as in claim 1 wherein: 

said input means at the one location provides 
an auxiliary code signal in response to manual 
, 50 actuation thereof, and applies to said encrypting 
means at the one location a pair of signals 
representative of the auxiliary code signal, the 
identification number for the one location and the 
code signal associated with the authorized 

55 individual; and 

said encrypting means at the remote location 
being coupled to receive the auxiliar/ code signal 
from the input means and the identification 
number and code signal from the memory of the 

60 data processing means for producing the first and 
second encoded outputs as said logical 
combination of a pair of signals applied thereto. 

3. Apparatus as in claim 1 comprising code- 
generating means responsive to said enabling 

65 signal for producing said key code as a logical 



manipulation of signals from the code-generating 
means. 

4. A method of securing the transmission of 
data under control of an authorized individual rom 
70 one location having an identification number to a 
femote location at which the identification 
number is stored, the method comprising the 
steps of: 

encrypting at the one location a pair of signals 
75 which are representative of at least a code signal 
from the authorized individual and the 
Identification number for the one location to 
produce first and second encoded outputs as a 
logical combination of the pair of signals: 
80 storing the first encoded output at the one 
location: 

storing the code signal from the authorized 
individual at the remote location; 

encrypting at the remote location a pair of 
85 signals representative of ^ least the stored code 
signal from the authorized individual and the 
stored identification number for the one location 
to produce first and second encoded outputs as 
said logical combination of the pair of signals; 
90 comparing second encoded signals produced 
by the encryption of a pair of signals at the first 
location, and by the encryption of a pair of signals 
at the remote location to enable the formation of 
a key code upon favorable comparison of the 
95 second encoded outputs; 

producing an encrypted key code as a logical 
manipulation of the key code and the first 
encoded output produced at the remote location; 
producing the key code from the encrypted key 
100 code received at the one location by decoding the 
encrypted key code with respect to said logical 
manipulation and the first encoded output stored 
at the one location: and 

encoding and decoding data at said one and 
1 05 remote locations with respect to the key code 
produced at said locations. 

5. A method as in claim 4 wherein the steps of 
encrypting at both the one location and remote 
location are performed on the respective pairs of 

1 10 signals which also are representative of at least a 
sequence number produced at the one location 
and transmitted to the remote location. 

6. A method as in claim 4 wherein the 
formation of the key code includes the steps of: 

1 1 5 generating code numbers; and 

encoding the generated code numbers to 
produce the key code in response to favorable 
comparison of said second encoded output 
signals. 

1 20 7. Data-handling apparatus for securing the 
transmission of data under control of an 
authorized individual from one location having an 
identification number to data processirig nieans 
having memory means with the identification 

1 25 number stored therein at a remote location 
substantially as hereinbefore described with 
reference to the accompanying drawings. 

8. A method of securing the transmission of 
data under control of an authorized individual 

1 30 from one location having an identification number 
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to a remote location at which the identification described with reference to the accompanying 

number is stored, substantially as hereinbefore drawings. 
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